Vulnerabilities > Ruckuswireless > Unleashed Firmware > 200.1.9.12.55
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-07-28 | CVE-2020-13919 | OS Command Injection vulnerability in Ruckuswireless Unleashed Firmware emfd/libemf in Ruckus Wireless Unleashed through 200.7.10.102.92 allows a remote attacker to achieve command injection via a crafted HTTP request. | 7.5 |
2020-07-28 | CVE-2020-13918 | Information Exposure vulnerability in Ruckuswireless Unleashed Firmware Incorrect access control in webs in Ruckus Wireless Unleashed through 200.7.10.102.92 allows a remote attacker to leak system information (that can be used for a jailbreak) via an unauthenticated crafted HTTP request. | 5.0 |
2020-07-28 | CVE-2020-13917 | OS Command Injection vulnerability in Ruckuswireless Unleashed Firmware rkscli in Ruckus Wireless Unleashed through 200.7.10.92 allows a remote attacker to achieve command injection and jailbreak the CLI via a crafted CLI command. | 7.5 |
2020-07-28 | CVE-2020-13915 | Insufficiently Protected Credentials vulnerability in Ruckuswireless Unleashed Firmware Insecure permissions in emfd/libemf in Ruckus Wireless Unleashed through 200.7.10.102.92 allow a remote attacker to overwrite admin credentials via an unauthenticated crafted HTTP request. | 6.4 |
2020-07-28 | CVE-2020-13914 | Improper Input Validation vulnerability in Ruckuswireless Unleashed Firmware webs in Ruckus Wireless Unleashed through 200.7.10.102.92 allows a remote attacker to cause a denial of service (Segmentation fault) to the webserver via an unauthenticated crafted HTTP request. | 5.0 |
2017-10-13 | CVE-2017-6224 | OS Command Injection vulnerability in Ruckuswireless Unleashed Firmware and Zonedirector Firmware Ruckus Wireless Zone Director Controller firmware releases ZD9.x, ZD10.0.0.x, ZD10.0.1.x (less than 10.0.1.0.17 MR1 release) and Ruckus Wireless Unleashed AP Firmware releases 200.0.x, 200.1.x, 200.2.x, 200.3.x, 200.4.x. | 9.3 |